The list author says: "Contains essentials of computer and network architecture, network protocols, network management, cryptography, general network security books, rootkits, hacking in all its forms, viruses and malware, forensics, best practices for coding to avoid being hacked, and some advanced tips and tricks books."
"COMPUTER & NETWORK ARCHITECTURE - Good book on computer architecture lying between Hennessy & Patterson and the elementary "How Computers Work" books. It discusses computer architecture plus specifics on current and next generation microprocessors that will power personal computers of the future."
"Classic textbook on computer networking from an academic viewpoint. Do not expect to ever be able to fix a specific network problem or become a CCNE by reading this book. However, doing either of those tasks rests on a firm foundation of the theory found in this book. Uses a 5 layer model to explain concepts rather than 7 layer OSI."
"It is the first systematic explanation of mobile communications as a discipline in itself, containing exercises, projects, and solutions. A follow-on to a standard networking course."
"NETWORK PROTOCOLS - Mostly about algorithms and protocols. The author is one of the world's most respected authorities on the subject, having invented some of the key protocols and algorithms herself. She explains the material so that it is accessible to anyone with a good technical background and an interest in the subject."
"This book covers a broad range of information about IPv6 and is an excellent resource for both managers and system engineers, since this book discusses economic and strategic aspects as well as technical details. An excellent discussion of the protocol itself. Assumes knowledge of IPV4."
"NETWORK MANAGEMENT - How to install, configure, and manage SNMP. Written for network and system administrators, the book introduces the basics of SNMP and then offers a technical background on how to use it effectively. Essential SNMP explores both commercial and open source packages, and elements like OIDs, MIBs, community strings, and traps are covered in depth."
"Detailed coverage goes to the HyperText Transfer Protocol (HTTP) versions 1.0 and 1.1, the Internet Protocol addressing scheme, and the Transmission Control Protocol specification. Design of Web servers, cache servers, and proxy servers gets much attention, as do site workload and traffic metrics."
"CRYPTOGRAPHY - Impeccably researched and unarguably complete, Schneier's expertise in theoretical mathematics, experience as a practitioner, and razor-sharp lucidity combine to make this the only book you'll ever need on the subject of cryptography."
"GENERAL N/W SECURITY - How black-hat hackers work, what tools and techniques they use, and how to assess and improve your systems' defenses. The author explains how Windows, Unix, and TCP/IP can be exploited for nefarious purposes, and details a modus operandi that's typical of the bad guys."
"The groundwork on building a secure and dependable system. Every aspect of information security is discussed in the book -- from passwords, access control, and attacks, to physical security and policy. Also, information warfare, privacy protection, access control, and more are discussed. Covers the end-to-end spectrum of security design and engineering."
"A practical compendium of the best practices for prevention of intrusions and defense against those intrusions that do succeed. Starting from the essentials of perimeter security, readers will methodically and effectively work their way through fortifying the security perimeter, designing a secure network, and maintaining and monitoring the security of the network."
"ROOTKITS - You need this book to understand the next one. It packs the latest concepts and terms, kernel and source code specifics, undocumented interfaces, component and tool descriptions, and architectural perspectives that reveal the inner workings of the operating system."
"The first section serves as an introduction to the topic and some of the high level concepts you'll need to know about Windows, control mechanisms, and where you can introduce your code. The second part is a highly technical tour of the techniques used to hook your rootkit in and hide it, And the third section is really one chapter covering detection of rootkits."
"HACKING - This book is starting to get a little bloated, but it is still a good clear book on the subject. Hacking is a diverse subject. The authors spread themselves too thin in some areas and thus add to the page count."
"Great introduction to real hacking. It includes major sections on programming, networking, and cryptography. All material is covered with an eye towards exploitation. Languages used in the book material consist of C, PERL, and Assembly for X86."
"How WiFi networks work, and how to configure your own. The framing specification is covered well, as are authentication protocols and the physical phenomena that affect IEEE 802.11x radio transmissions. There's advice on how to design a wireless network topology, and how to go about network traffic analysis and performance improvement. Good companion to the next book on the list."
"The best book available for wireless assessment teams, explaining tools in an exceptional manner and smashing myths behind which security administrators hide. Think your wireless network doesn't produce enough packets for WEP to be cracked? Read ch 8."
"By experts who spend their lives breaking database systems. Their depth of knowledge is unparalleled. Addresses security for Oracle, IBM DB2, IBM Informix, Sybase ASE, MySQL, Microsoft SQL Server, and PostgreSQL. No other database security book discusses as many products."
"learn how to defend against the latest DoS, man-in-the-middle, call flooding, eavesdropping, VoIP fuzzing, signaling and audio manipulation, Voice SPAM/SPIT, and voice phishing attacks."
"Each mobile device (Blackberry, PDA and Cell Phone) will be represented in the book and specific, numerous hacks and protective measures will be illustrated for each device. All examples apply across the board to all mobile device hardware and software."
"VIRUSES & MALWARE - Learn the workings of worms, viruses, trojan horses and other malware - not how to write them, but how to understand and deal with them. The information on setting up a lab to examine these critters is a good start for those wanting to understand attacks."
"With a little background in basic computing, you can easily understand this book. The book starts off simple virus from back in the day, describing the first viruses to appear. The book then goes into detail about the more advanced forms of virus infections and viruses to appear on more modern systems."
"Older book written for programmers, features assembly language and some C in a learn by example guide to writing computer viruses. The book is broken up into three parts. The first part focuses on replicant code, while the second part focues anti-viral software. The last and final part focuses on virus payloads."
"FORENSICS - The author draws from years of experience as a network security analyst for the Air Force and work as a forensic analyst. The author goes through various scenarios demonstrating different techniques for Intrusion detection using Open Source tools."
"Learn how to assess threats from internal clients, instrument networks to detect anomalies in outgoing traffic, architect networks to resist internal attacks, and respond effectively when attacks occur."
"The authors address a serious lack in this field. How does someone [you] gain experience analysing a real attack without already being employed at a company experiencing such an event? In response, the authors made several scenarios that, they claim, reflect what actual attackers would likely have done."
"Details on the internals of file systems such as ext2, ext3, NTFS, FAT and also UFS1 and 2. This is not a general purpose forensics practitioner guide, nor is it a guide to acquiring evidence. The book just looks at the file systems! What are the NTFS-specific acquisition issues? Ext3 vs ext2? Etc, etc - many other technical forensics questions are answered in this book."
"SOFTWARE SECURITY - The first part deals with security-related reverse engineering and the second explores the more practical aspects of reverse engineering. In addition, the author explains how to reverse engineer a third-party software library to improve interfacing and how to reverse engineer a competitor's software to build a better product."
"The software security best practices described in this book have their basis in good software engineering and involve explicitly pondering security throughout the software development lifecycle. This means knowing and understanding common risks, designing for security, and subjecting all software artifacts to thorough, objective risk analyses and testing."
"Excellent theory level walkthrough of Java web standards, in addition to having implementation level code samples. Needed info with all of the J2EE apps out there."
"TIPS & TRICKS - Ways of defending your servers & networks from a variety of attacks. Examples of how to detect the presence & track every keystroke of network intruders, methods for protecting your network and data using strong encryption, and techniques for laying traps for would-be hackers."
"Advanced book of various security tricks and tips. The why and how of attacks and various threats, showing you some of the tools that can be used in these actions against you. The reader can then take these tools and turn them against the attackers, finding vulnerabilities first, and using other tools to counteract attacks and minimize damage."
"Not focused on security specifically, but on the admin and design of Cisco networks plus some general information. However, there is a good smattering of network security info throughout the book from the experienced author."
"A reference book on the most cutting edge tools out there for network security. This is not a textbook on how to approach network security or a primer in the basics. The folks at Juniper Networks have gathered some invaluable information for the professional in one book including an introductory chapter on legal issues."
Share with Friends
